110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/directorBCNU/admin/ drwxr-xr-x Free 52.35 GB of 127.8 GB (40.96%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/manage/directorBCNU/admin/ drwxr-xr-x
Free 52.35 GB of 127.8 GB (40.96%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: send.php (2.61 KB) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

SearchMaxDocGroup(); $oDlc3->SearchDlcID11($maxgroup,$deptId); if($oDlc3->GetRecord()==1){ $dlc_search=11; $nextdlc_search=12; }else{ $dlc_search=5; $nextdlc_search=6; } $oDlc->SearchByDocGroupDlcID2($maxgroup,$deptId,$dlc_search); //$oDlc->SearchByDocGroupDlcID($maxgroup,$deptId,$dlc_search); if($oDlc->GetRecord()=="1"){ // if($oDlc->DlcActive=="Y"){ $pssend=$oDlc->DlcID; return $pssend; /* }else{ $oDlc2->SearchByDocGroupDlcID($maxgroup,$deptId,$nextdlc_search); if($oDlc2->GetRecord()=="1"){ if($oDlc2->DlcActive=="Y"){ $pssend=$oDlc2->DlcID; return $pssend; }else{ return "N"; } }else{ return "N"; } } */ /*}else{ $oDlc2->SearchByDocGroupDlcID($maxgroup,$deptId,$nextdlc_search); if($oDlc2->GetRecord()=="1"){ $pssend=$oDlc2->DlcID; return $pssend; }else{ return "N"; } }else{ return "N"; } */ } } include_once("../../class/clsConnection.php"); include_once("../../class/clsDB.php"); include_once "../global.php"; include_once "../class/clsDocLineConfig.php"; include_once "../class/clsDepartment.php"; include_once "../class/clsPerson.php"; include_once "../link/functionshow.php"; include_once "../link/function.php"; $oC = new clsConnection($GLOBALS['DBHOST'], $GLOBALS['DBNAME_EOFFICE'], $GLOBALS['DBUSER_EOFFICE'], $GLOBALS['DBPASS_EOFFICE']); $oDlc = new DocLineConfig($oC); $oDlc4 = new DocLineConfig($oC); $oDlc3 = new DocLineConfig($oC); $oDP2 = new Department($oC); $oDP = new Department($oC); $oPS2 = new person($oC); $oDP2->SearchBydeptDateDocGroup($oDP->SearchMaxDocGroup()); while($oDP2->GetRecord()){ $pssend=ShowSendtoPs22($oDP2->deptId); if($pssend!=''){ echo $pssend.'-'.$oDP2->deptId.'-'.$oDP2->deptName; $oDlc4->SearchByKey($pssend); $oDlc4->GetRecord(); $oPS2->SearchByKey($oDlc4->personId); $oPS2->GetRecord(); echo " [".GetPrefix($oPS2->prefixId).$oPS2->fName." ".$oPS2->lName."]
"; } } ?>

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0057 ]--